[
https://issues.apache.org/jira/browse/KNOX-1485?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=16635979#comment-16635979
]
Kevin Risden commented on KNOX-1485:
------------------------------------
Should be no incompatibilities:
{noformat}
2.0 RELEASE HISTORY
2.1.1 Version
Release: 1.60
Date: 2018, June 30
2.1.2 Defects Fixed
Base64/UrlBase64 would throw an exception on a zero length string. This has
been fixed.
Base64/UrlBase64 would throw an exception if there was whitespace in the last 4
characters. This has been fixed.
The SM2 Signature JCE class now properly resets of Signature.sign() is called.
XMSS applies further validation to deserialisation of the BDS tree so that
failure occurs as soon as tampering is detected (see CVE below).
An off by one error in the JsseDefaultHostnameAuthorizer isValidNameMatch
method has been fixed.
BCJSSE: Return empty byte array instead of null, for the null session ID.
If a checksum calculator was passed to a PGPSecretKey constructor, but the
encryptor was set to null, the wrong checksum would be calculated for the S2K
usage. This has been fixed.
The CRMF EncryptedValue, when containing a private key, held an encoding of an
EncryptedPrivateKeyInfo, rather than just the encrypted bytes. This has been
fixed.
EC point precomputations could fail due to race conditions in concurrent
settings. Point precomputation was reworked to fix this.
PGP key rings containing EdDSA signatures would cause an exception on parsing.
This has been fixed.
BCJSSE: a mixed case error for brainpool curves in the supported groups set has
been fixed.
getVersion() on the CRMF CertTemplate class could cause a null pointer
exception if the optional version field was left out. This has been fixed.
Use of a short buffer with RSA via the JCE could result in an escaping
ArrayIndexOutOfBoundsException. This has been fixed so that a
ShortBufferException is now thrown.
SM2Engine.decrypt() ignored the offset parameter and assumed zero. This has
been fixed.
A PEM encoded TRUSTED CERTIFICATE missing a trust block would result in a
NullPointerException. This has been fixed.
If the Sun provider was removed entirely the BC SecureRandom was unable to seed
and caused an InstantiationException. A back up seeding strategy has been added
to prevent this.
In some situations the use of sm2p256v1 would result in "unknown curve name".
This has been fixed.
CMP PollReqContent now supports multiple certificate request IDs.
2.1.3 Additional Features and Functionality
TLS: Extended CBC padding is now optional (and disabled by default).
TLS: Now supports channel binding 'tls-server-end-point'.
TLS: InterruptedIOException (e.g. socket timeout) during app-data reads no
longer fails connection; handshake is optionally resumable after IIOE using
'TlsProtocol.setResumableHandshake()'.
TLS: Added utility methods and constants for ALPN (RFC 7301).
BCJSSE: Now supports system property 'jdk.tls.client.protocols'
BCJSSE: Now supports SSLParameters.setSNIMatchers.
BCJSSE: SNI can now be used in earlier JDKs via BC extensions.
BCJSSE: Session context now holds sessions via soft references.
An implementation of CryptoServicesRegistrar has been added to allow
configuring of DSA/DH parameters and global setting of the SecureRandom used in
the APIs.
Support has been added for the Unified Model of key agreement for both regular
Diffie-Hellman and ECCDH.
Standard key-wrapping ciphers can now be used for wrapping other data where the
cipher supports it.
BCFKS can now support the use of generalised wrapping algorithms.
A parser has now been added for the GNU keybox file format. The GPG SExpr
parser now covers a wider range of key types.
PGP EC operations now support more than just NIST curves.
Restrictions on the output sizes of the Blake2b/s digests in the lightweight
API have been removed.
The Whirlpool digest OID has been added to its corresponding mappings for the
JCA.
Support has been added for SHA-3 based signatures to the CMS API.
Support has been added to the CMS API for the generation of ECGOST key
transport messages.
The ECElGamalEncryptor now supports the use of ECGOST curves.
The number of signature subpackets in OpenPGP signatures that are converted
into explicit types automatically has been increased.
RFC 8032: Added low-level implementations of Ed25519 and Ed448.
The provider jars now include a services entry for the 2 providers they hold.
Support has been added for the German BSI KAEG Elliptic Curve key agreement
algorithm with X9.63 as the KDF to the JCE.
Support has been added for the German BSI KAEG Elliptic Curve session key KDF
to the lightweight API.
2.1.4 Security Related Changes and CVE's Addressed by this Release
CVE-2018-1000180: issue around primality tests for RSA key pair generation if
done using only the low-level API.
CVE-2018-1000613: lack of class checking in deserialization of XMSS/XMSS^MT
private keys with BDS state information.
2.2.1 Version
Release: 1.59
Date: 2017, December 28
2.2.2 Defects Fixed
Issues with using PQC based keys with the provided BC KeyStores have now been
fixed.
ECGOST-2012 public keys were being encoded with the wrong OID for the digest
parameter in the algorithm parameter set. This has been fixed.
SM3 has now been added as an acceptable algorithm for TSP timestamps.
SM2 signatures were using the wrong default identity value. This has now been
fixed.
An edge condition in Blake2b for hashes on data with a length in the range of
2**64 - 127 to 2**64 has been identifed and fixed.
The ISO Trailer for SHA512/256 used in X9.31 and ISO9796-2 signatures was
incorrect. This has been fixed.
The BCJSSE SSLEngine implementation now correctly wraps/unwraps application
data only in whole records.
The curve parameters for tc26_gost_3410_12_256_paramSetA were incorrect. These
have been fixed.
Further work has been done to try and prevent escaping exceptions on opening
random files as BCFKS files or PKCS#12 files.
An off-by-one error for the max N check for SCRYPT has been fixed. SCRYPT
should now be compliant with RFC 7914.
ASN1GeneralizedTime will now accept a broader range of input strings.
2.2.3 Additional Features and Functionality
GOST3410-94 private keys encoded using ASN.1 INTEGER are now accepted in
private key info objects.
SCRYPT is now supported as a SecretKeyFactory in the provider and in the PKCS8
APIs
The BCJSSE provider now supports session resumption in clients.
The BCJSSE provider now supports Server Name Indication.
The BCJSSE provider now supports the jdk.tls.namedGroups system property.
The BCJSSE provider now supports the org.bouncycastle.jsse.ec.disableChar2
system property, which optionally disables the use of characteristic-2 elliptic
curves.
EC key generation and signing now use cache-timing resistant table lookups.
Performance of the DSTU algorithms has been greatly improved.
Support has been added for generating certificates and signatures in the PKIX
API using SHA-3 based digests.
Further work has been done on improving SHA-3 performance.
The organizationIdentifier (2.5.4.97) attribute has been added to BCStyle.
GOST3412-2015 has been added to the JCE provider and the lightweight API.
The Blake2s message digest has been added to the provider and the lightweight
API.
Unified Cofactor Diffie-Hellman (ECCDHU) is now supported for EC in the JCE and
the lightweight API.
A DEROtherInfo generator for key agreement using NewHope as the source of the
shared private info has been added that can be used in conjunction with regular
key agreement algorithms.
RFC 7748: Added low-level implementations of X25519 and X448.
2.2.4 Security Related Changes and CVE's Addressed by this Release
CVE-2017-13098 ("ROBOT"), a Bleichenbacher oracle in TLS when RSA key exchange
is negotiated. This potentially affected BCJSSE servers and any other TLS
servers configured to use JCE for the underlying crypto - note the two TLS
implementations using the BC lightweight APIs are not affected by
this.{noformat}
From: https://www.bouncycastle.org/releasenotes.html
> Upgrade bcprov-jdk15on to 1.60
> ------------------------------
>
> Key: KNOX-1485
> URL: https://issues.apache.org/jira/browse/KNOX-1485
> Project: Apache Knox
> Issue Type: Sub-task
> Reporter: Kevin Risden
> Assignee: Kevin Risden
> Priority: Major
> Fix For: 1.2.0
>
> Attachments: KNOX-1485.patch
>
>
> bcprov-jdk15on 1.56 -> 1.60
--
This message was sent by Atlassian JIRA
(v7.6.3#76005)
